The server only advertises RC4 support and refuses connection from openssl with 'DES-CBC3-SHA' as a cipher. Nonetheless, the SSL Test lists 3DES as the negotiated cipher for several clients (e.g. Android 4.3). Is this by design?